Show HN: Open-source compliance-as-code for crypto projects

4 daivikgoel 2 7/27/2025, 12:06:05 AM github.com ↗

Hey Everyone! Avi and I (in the current YC S25 Batch) noticed how fragmented crypto compliance is with rules changing constantly, vary by region, and force developers and legal teams into a scramble.

So we hacked together a prototype framework that generates a “guardrail” smart contract which:

- Hooks into your KYC provider - Enforces rules defined a simple compliance.yaml file - Automatically blocks users you can't legally serve

When regulations shift (new blocked country, updated KYC threshold, etc.), just update your YAML and redeploy with no smart contract rewrites. Audit prep also becomes a breeze. Our goal is to make staying compliant as easy as possible

How it works:

1. Declare once in compliance.yaml modules: token_sale:

start_date: "2025-02-01" end_date: "2025-03-01" max_cap_usd: 500000 kyc_threshold_usd: 1000

geographic_restrictions: blocklist: ["US", "CN", "IR"]

2. Compile with one command shor compile --blockchain ethereum --with-oracle

This generates:

- Guardrail.sol – Smart contract that reverts non-compliant transactions - policy.pdf – Lawyer-readable compliance documentation - audit.json – Manifest with rules, timestamp, and bytecode hash

3. Deploy & forget - Drop Guardrail.sol into your existing deployment flow - Smart contract enforces rules automatically on-chain - Run shor export-audit --format=zip for auditors

Why now?

- Regulations are getting tighter and full, active compliance is becoming more necessary

Try it in either SDK or CLI: https://github.com/ShorPay/shor-compliance

We'd love your feedback on:

- Would this be useful for your projects? - How are you handling compliance today? - Which jurisdictions or rules give you the most trouble - Missing jurisdictions (we only have US/EU/SG) - KYC providers you need (we support Sumsub) - Smart contract patterns we should add

Email: founders@shorpay.com

Contributing: https://github.com/ShorPay/shor-compliance/blob/main/CONTRIB...

Comments (2)

wbnns · 18m ago

Nice work; this is super interesting and clearly reflects a lot of thoughtful planning.

At this stage, I’d suggest actively joining a range of communities to gather feedback on how they might leverage this in their apps. A good starting point is the Base ecosystem[1], which lists projects with active Discords and Telegrams. You’ll find similar directories for Solana[2], Ethereum L2s, and other networks.

My main critique is around the compliance claims. Many jurisdictions, US included, lack clear guidance, and the landscape is changing quickly. There is a lot of gray area.

From a builder’s perspective, the key question is: What exactly does integrating this tool achieve in terms of regulatory compliance? Can they confidently rely on it as compliant? If so, where and how?

You might consider partnering with legal firms or compliance leaders who work directly with foundations and top-tier apps. Their input could help align your product with real-world needs and create a feedback loop that keeps the tool aligned with evolving guidance.

Finally, this seems like a massive lift to maintain. Curious how you plan to manage costs to keep it in sync over the next 3, 6, or 9 months—and how it sustains itself long-term.

Hope that helps!

[1] https://base.org/ecosystem [2] https://solapps.dev/

avikonduru · 11h ago

Any feedback, both positive or negative, would be greatly appreciated!

Thunder Compute (YC S24) Is Hiring a C++ Systems Engineer (ycombinator.com)

Optery (YC W22) Is Hiring in Engineering, Legal, Sales, Marketing (U.S., Latam) (optery.com)

QuestDB (YC S20) Is Hiring a Technical Content Lead (questdb.com)

Depot (YC W23) Is Hiring a Technical Content Writer (Remote) (ycombinator.com)

Firebender (YC W24) Is Hiring (ycombinator.com)

Better Auth (YC X25) Is Hiring (ycombinator.com)

Kapa.ai (YC S23) is hiring a software engineers (EU remote) (ycombinator.com)

Spice Data (YC S19) Is Hiring a Product Associate (New Grad) (ycombinator.com)

Extend (YC W23) is hiring engineers to build SOTA document processing (jobs.ashbyhq.com)

Piramidal (YC W24) is hiring a full stack engineer (ycombinator.com)

Mango Health (YC W24) Is Hiring (ycombinator.com)

Resolve (YC W15) Is Hiring an Operations and Billing Lead for Construction VR

Arva AI (YC S24) Is Hiring an AI Research Engineer (London, UK) (arva.ai)

Rejoy Health (YC W21) Is Hiring (ycombinator.com)

Weave (YC W25) is hiring an AI engineer (ycombinator.com)

CoinTracker (YC W18) is hiring to solve crypto taxes and accounting (remote)

Crimson (YC X25) is hiring founding engineers in London (ycombinator.com)

Martin (YC S23) Is Hiring Founding Engineers to Build a Better Siri (ycombinator.com)

Meticulous (YC S21) is hiring in UK to redefine software dev (tinyurl.com)

Infisical (YC W23) Is Hiring DevRel Engineers (ycombinator.com)

Sieve (YC X25) is hiring researchers to build large video datasets for AI labs (sievedata.com)

Activeloop (YC S18) Is Hiring AI Search and Python Back End Engineers(Onsite,MV) (careers.activeloop.ai)

Attimet (YC F24) – Quant Trading Research Lab – Is Hiring Founding Researcher (ycombinator.com)

Metriport (YC S22) is hiring engineers to improve healthcare data exchange (ycombinator.com)

Telli (YC F24) Is Hiring Engineers [On-Site Berlin] (hi.telli.com)

Continue (YC S23) is hiring software engineers in San Francisco (ycombinator.com)

UpCodes (YC S17) is hiring a Head of Ops to automate construction compliance (up.codes)

Enhanced Radar (YC W25) is hiring a founding engineer

Converge (YC S23) well-capitalized New York startup seeks product developers (runconverge.com)

Kyber (YC W23) Is Hiring Enterprise BDRs (ycombinator.com)

MindsDB (YC W20) is hiring an AI solutions engineer (job-boards.greenhouse.io)

Show HN: Open-source compliance-as-code for crypto projects

Comments (2)